Dafny: An Automatic Program Verifier for Functional Correctness

Please, could you have a look to the asserts in the program http://rise4fun.com/Dafny/vDkt ?Thanks,PaquiComments: Ups!!! sorry I forgot (again :-?) that Dafny knows from a method exactly what its...

View Article

Source code checked in, #7cb4f4e9c11e

November 5, 2014, 1:39 pm

Temporarily disabled one of the methods in NumberRepresentations.dfy -- this needs to be addressed in some way that will produce stable verification results

View Article

Source code checked in, #bff80b373c77

November 5, 2014, 1:49 pm

Merge

View Article

Source code checked in, #8461fcb98bad

November 5, 2014, 10:33 pm

Added computation of free variables in dirty while statements.

View Article

Source code checked in, #92e4e360b931

November 5, 2014, 10:44 pm

Updated test.

View Article

Source code checked in, #1a4fa0a186b2

November 6, 2014, 4:08 am

Extracted a separate class to generate fresh variable names.

View Article

Source code checked in, #e499fdb1c8da

November 6, 2014, 2:16 pm

Started fixing a number of LL(1) warnings Disallow empty modifies/reads clauses (this eliminates some LL(1) warnings) Require modify statement to take a nonempty list of frame expressions

View Article

Source code checked in, #9bfbd1150a29

November 6, 2014, 2:40 pm

Merge

View Article

Source code checked in, #2da84c5b4418

November 6, 2014, 6:03 pm

Resolved several more LL(1) warnings in the grammar

View Article

Created Unassigned: Sets of objects by extension [44]

November 7, 2014, 2:43 am

It would be nice to be able to write a set of objects by extension; a typical use-case would be initializing a dynamic frame, as in:``` C#class C { ghost var rep: set<object>; var impl: Aux;...

View Article

Commented Unassigned: Sets of objects by extension [44]

November 7, 2014, 3:14 pm

It would be nice to be able to write a set of objects by extension; a typical use-case would be initializing a dynamic frame, as in:``` C#class C { ghost var rep: set<object>; var impl: Aux;...

View Article

Source code checked in, #a7ca01239516

November 7, 2014, 5:34 pm

Updated version to 1.9.2.11107 (which is going out on rise4fun)

View Article

New Post: Function Lemma Keyword

November 11, 2014, 4:14 am

Hi, I found myself thinking it would be nice to have a function lemma keyword. Something like this:function lemma MyLemma(x:int) requires P(x); ensures Q(x); { E } which is equivalent topredicate...

View Article

Created Unassigned: An Insertion Sort verification [45]

November 11, 2014, 10:09 am

I wonder how this program http://rise4fun.com/Dafny/TBQ0is verified by Dafny without the inner invariant, since the outer invariant is not preserved in the inner loop.Best,Paqui

View Article

Commented Unassigned: An Insertion Sort verification [45]

November 12, 2014, 7:08 am

I wonder how this program http://rise4fun.com/Dafny/TBQ0is verified by Dafny without the inner invariant, since the outer invariant is not preserved in the inner loop.Best,PaquiComments: If I...

View Article

New Post: Function Lemma Keyword

November 12, 2014, 2:07 pm

Would the purpose of using it be to get the implication P(x) ==> Q(x) somewhere in the program? How would you use it? Can you not just an ordinary lemma instead? Note thatSomeLemma(x); E is an...

View Article